Hands on Security Engineer/Architect

About The Position

Requirements

• Bachelor’s Degree in Computer Science, Engineering, or technical equivalent
• 10 years of relevant technical experience or 18 years of total experience in lieu of degree.
• At least 2+ years acting as an ISSE or working as a security engineer for federal systems
• Eight (8) years minimum of security engineering, DevSecOps, or cloud architecture experience
• U.S. Citizenship and must be able to obtain a Public Trust security clearance from the U.S. Government
• Rebellious attitude and willingness to challenge the status quo.
• Expertise in securing platforms hosted in AWS GovCloud and Azure Government
• Strong hands-on implementation experience with most of NIST RMF, FISMA, FedRAMP, and Zero Trust architecture.
• Hands-on skills in IaC tools like Terraform and CI/CD tools such as GitLab/Jenkins, with ability to adopt new technologies if procured by the agency
• Experience with network isolation tools such as Palo Alto Next Generation Firewalls (NGFW) and Juniper Mist Network Access Control (NAC) solutions or comparable
• Excellent written and oral communication skills; ability to explain complex, technical information in easily understood terms; ability to brief Senior VA leadership regularly

Nice To Haves

• Experience with IoT/IoMT security solutions is a plus

Responsibilities

• Analyze complex technical findings and determine necessary resources needed to solve problem-sets across multiple cybersecurity and technical domains for the Department of Veteran’s Affairs systems
• Lead teams to assess, develop and implement technical solutions to remediate vulnerabilities and other complex cybersecurity challenges
• Facilitate working sessions and distill complex concepts into non-technical/common language
• Assess complex technical findings and determine necessary resources needed to solve problem-sets across multiple cybersecurity and technical domains
• Partner with technical teams to develop and implement technical solutions
• Design, build, and deploy secure cloud-native architectures and infrastructure components for VA information systems
• Develop and maintain CI/CD pipelines with integrated security scanning, policy enforcement, and remediation tools
• Implement secure infrastructure as code/policy as code using tools such as Terraform/CloudFormation, including writing and implementing PaC scripts
• Align security architectures with Federal Zero Trust strategy, VA directives, and OMB policies
• Enable automation of system telemetry and analytics pipelines for cyber situational awareness
• Provide engineering and technical analysis on behalf of Agency Authorizing Officials (AOs) for System Security Plans (SSPs), Risk Assessments, Security Controls Traceability Matrices (SCTMs), and POA&Ms
• Support system authorization and compliance activities including continuous monitoring and system audits
• Conduct regular and ad-hoc analysis of security control findings and develop and implement remediation strategies